Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validation vulnerabilities and exploits
(subscribe to this query)
7.3
CVSSv3
CVE-2020-11904
The Treck TCP/IP stack prior to 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write.
Treck Tcp\\/ip
5.3
CVSSv3
CVE-2020-11913
The Treck TCP/IP stack prior to 6.0.1.66 has an IPv6 Out-of-bounds Read.
Treck Tcp\\/ip
4.3
CVSSv3
CVE-2020-11914
The Treck TCP/IP stack prior to 6.0.1.66 has an ARP Out-of-bounds Read.
Treck Tcp\\/ip
NA
CVE-2005-0735
newsscript.pl for NewsScript allows remote malicious users to gain privileges by setting the mode parameter to admin.
Newsscript.co.uk Newsscript
1 EDB exploit
NA
CVE-2005-1398
phpcart.php in PHPCart 3.2 allows remote malicious users to change product price information by modifying the (1) price or (2) postage parameters. NOTE: it was later reported that 3.4 up to and including 4.6.4 are also affected.
Phpcart Phpcart 3.2
Phpcart Phpcart 3.4
Phpcart Phpcart 4.6.4
1 EDB exploit
NA
CVE-2006-6919
Firefox Sage extension 1.3.8 and previous versions allows remote malicious users to execute arbitrary Javascript in the local context via an RSS feed with an img tag containing the script followed by an extra trailing ">", which Sage modifies to close the img element...
Sage-mozdev Sage
1 EDB exploit
NA
CVE-2004-2699
deleteicon.aspx in AspDotNetStorefront 3.3 allows remote malicious users to delete arbitrary product images via a modified ProductID parameter.
Aspdotnetstorefront Aspdotnetstorefront 3.3
1 EDB exploit
8.1
CVSSv3
CVE-2018-17215
An information-disclosure issue exists in Postman up to and including 6.3.0. It validates a server's X.509 certificate and presents an error if the certificate is not valid. Unfortunately, the associated HTTPS request data is sent anyway. Only the response is not displayed. ...
Postman Postman
NA
CVE-2006-3329
SQL injection vulnerability in search.php in PHP/MySQL Classifieds (PHP Classifieds) allows remote malicious users to execute arbitrary SQL commands via the rate parameter.
Deltascripts Php Classifieds 6.04
1 EDB exploit
NA
CVE-2012-2983
file/edit_html.cgi in Webmin 1.590 and previous versions does not perform an authorization check before showing a file's unedited contents, which allows remote malicious users to read arbitrary files via the file field.
Gentoo Webmin
Gentoo Webmin 1.580
Gentoo Webmin 1.500
Gentoo Webmin 1.480
Gentoo Webmin 1.400
Gentoo Webmin 1.390
Gentoo Webmin 1.290
Gentoo Webmin 1.280
Gentoo Webmin 1.200
Gentoo Webmin 1.570
Gentoo Webmin 1.550
Gentoo Webmin 1.470
Gentoo Webmin 1.450
Gentoo Webmin 1.380
Gentoo Webmin 1.370
Gentoo Webmin 1.270
Gentoo Webmin 1.260
Gentoo Webmin 1.170
Gentoo Webmin 1.160
Gentoo Webmin 1.180
Gentoo Webmin 1.520
Gentoo Webmin 1.510
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »